I've had less luck using PKCS#11 wrappers with the Sun code. 2 HSM manufacturers, one drops into an infinite loop, the other errors out before anything happens.
So far I can't get a straight answer out of either of them. I like the idea of the bridge, because it's a one-line configuration (where's your DLL?) as opposed to complicated setup. The reality is proving to be considerably more agravating. Anyone else successfully working with the PKCS11 bridge? Thanks, Jason On 5/4/07, Arshad Noor <[EMAIL PROTECTED]> wrote: > Yes, it is definitely possible. We have successfully used smartcards - > currently working on integrating more than one HSM - with the XMLSignature > libraries from the Java Web Services Developer Pack (JWSDP - which includes > the JSR 105-code to the best of my knowledge). > > It also works through the PKCS11-Bridge in the JDK. Sample code - for those > interested - is available at http://www.strongkey.org. > > Regards, > > Arshad Noor > StrongAuth, Inc. > > ----- Original Message ----- > From: Julien PASQUIER <[EMAIL PROTECTED]> > Date: Friday, May 4, 2007 8:20 am > Subject: Re: XML Security and HSM > > > Hi, > > > > I think that it is possible. You must develop or used a JCE > > provider (a KeyStore implementation to use the private key of your > > HSM).You could use a provider implementation of PKCS#11 (i.e : > > IAIK or Sun with JRE 1.5) if your HSM support the PKCS#11 interface. > > > > Julien > > > > ----- Original Message ----- > > From: Eric Tournier > > To: security-dev@xml.apache.org > > Sent: Friday, May 04, 2007 4:41 PM > > Subject: XML Security and HSM > > > > > > Hi :) > > > > I use xml-sec-1.4.0.jar library to perform signature and > > encryption. I wish to do these operations with a HSM such as LUNA, > > Trustway,... Can you tell me if it is possible ? > > > > Thanks in advance > > Eric > > > > Eric TOURNIER > > Ingénieur concepteur objet senior - Expertise technique > > Java/J2EE/XML/AOP - Spring/Hibernate/Maven > > ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯ > > STERIA > > Département Banque, Assurance et Finance > > 46, rue Camille Desmoulins - 92782 Issy-Les-Moulineaux Cedex 9 > > > > Tél : 01 53 94 22 94 - Mob : 06 50 01 38 30 > > [EMAIL PROTECTED] > > > > > > > > The belief in the possibility of a short decisive war appears to be > > one of the most ancient and dangerous of human illusions. > > _______________________________________________ > > Robert Wilson LYND (1879-1949) > > > > > > > > > > ------------------------------------------------------------------- > > -------------------- > > Orange vous informe que cet e-mail a été contrôlé par l'anti-virus > > mail.Aucun virus connu à ce jour par nos services n'a été détecté. > > > > > > > > -- - Jason
